Описание
The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| gpac | fixed | 2.0.0+dfsg1-2 | package | |
| gpac | end-of-life | buster | package |
Примечания
https://github.com/gpac/gpac/issues/1883
https://github.com/gpac/gpac/commit/b09c75dc2d4bf68ac447daa71e72365aa30231a9 (v2.0.0)
EPSS
Процентиль: 23%
0.00077
Низкий
Связанные уязвимости
CVSS3: 5.5
ubuntu
больше 3 лет назад
The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
CVSS3: 5.5
nvd
больше 3 лет назад
The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
CVSS3: 5.5
github
больше 3 лет назад
The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
EPSS
Процентиль: 23%
0.00077
Низкий